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JOINT ASSIGNMENT 



WHEREAS, WE, Victor Kouznetsov, Daniel J. Melchione, Michael Chin-Hwan Pak, and Nicholas 
C.W. Hogle (hereinafter "ASSIGNORS"), citizens of Russia, USA, USA, and USA, respectively, residing 
at: 20287 SW Tremont Way, Aloha, Oregon 97007; 10380 SW 152d Terrace, Beaverton. Oregon 97007. 
15894 NW Andalusian Way, Portland, OR 97229 , and 147 West Campus, Oregon State University, 
Corvallis, OR 97331-1801, respectively; are the inventors of the invention in "System And Method For 
Providing Web Browser-Based Secure Remote Network Appliance Configuration In A Distributed 
Computing Environment," for which we have executed a patent application with the U.S. Patent and 
Trademark Office of the United States 

[HI which is executed on even date herewith 

m which is identified by THE LAW OFFICES OF PATRICK J.S. INOUYE as attorney docket no. 
002.0233.01 

□ which was filed on [FILING DATE], Application No. [APPLICATION NO.] 

and WHEREAS, Networks Associates Technology, Inc. (hereinafter "ASSIGNEE"), a Delaware 
Corporation having a business address at 3965 Freedom Circle, Santa Clara CA 95054, is desirous of 
obtaining our entire right, title and interest in, to and under the said invention and the said application: 

NOW, THEREFORE, in exchange for good and valuable consideration, the receipt of which is 
hereby acknowledged, we, the said ASSIGNORS, have sold, assigned, transferred and set over, and by these 
presents do hereby sell, assign, transfer and set over, unto the said ASSIGNEE, its successors, legal 
representatives and assigns, our entire right, title and interest in, to and under the said invention, and the said 
United States patent application and all divisions, renewals and continuations thereof, and all Patents of the 
United States which may be granted thereon and all reissues and extensions thereof; and all applications for 
industrial property protection, including, without limitation, all applications for patents, utility models, and 
designs which may hereafter be filed for said invention in any country or countries foreign to the United 
States, together with the right to file such applications and the right to claim for the same the priority rights 
derived from said United States application under the Patent Laws of the United States, the International 
Convention for the Protection of Industrial Property, or any other international agreement or the domestic 
laws of the country in which any such application is filed, as may be applicable; and all forms of industrial 
property protection, including, without limitation, patents, utility models, inventors' certificates and designs 
which may be granted for said invention in any country or countries foreign to the United States and all 
extensions, renewals and reissues thereof; 

AND WE HEREBY authorize and request the Director of the United States Patent and Trademark 
Office, and any Official of any country or countries foreign to the United States, whose duty it is to issue 
patents or other evidence or forms of industrial property protection on applications as aforesaid, to issue the 
same to the said ASSIGNEE, its successors, legal representatives and assigns, in accordance with the terms 
of this instrument. 

AND WE HEREBY covenant and agree that we have the full right to convey the entire interest 
herein assigned, and that we have not executed, and will not execute, any agreement in conflict herewith. 

AND WE HEREBY further covenant and agree that we will communicate to the said ASSIGNEE, 
its successors, legal representatives and assigns, any facts known to us respecting said invention, and testify 
in any legal proceeding, sign all lawful papers, execute all divisional, continuing, reissue and foreign 
applications, make all rightful oaths, and generally do everything possible to aid the said ASSIGNEE, its 
successors, legal representatives and assigns, to obtain and enforce proper protection for said invention in all 
countries. In the event that one or more of the above inventors is not an employee of ASSIGNEE at the 



time such aid is required, they agree to render such aid in return for an hourly rate of pay no greater than 
twice their equivalent regular hourly pay as it stood on the date of their departure from ASSIGNEE. 
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5 SYSTEM AND METHOD FOR PROVIDING WEB BROWSER-BASED 
SECURE REMOTE NETWORK APPLIANCE CONFIGURATION IN A 
DISTRIBUTED COMPUTING ENVIRONMENT 

Cross-Reference to Related Applications 

This patent application is a conversion of U.S. provisional patent 
10 applications, Serial No. 60/309,835, filed August 3, 2001, pending; and Serial No. 
60/309,858, filed August 3, 2001, pending; the priority dates of which are claimed 
and the disclosures of which are incorporated by reference. 

Field of the Invention 

The present invention relates in general to secure network appliance 
15 configuration and, in particular, to a system and method for providing Web 
browser-based secure remote network appliance configuration in a distributed 
computing environment. 

Background of the Invention 

Enterprise computing environments generally include both localized 
20 intranetworks of interconnected computer systems and resources internal to an 
organization and geographically distributed internetworks, including the Internet. 
Intranetworks make legacy databases and information resources available for 
controlled access and data exchange. Internetworks enable internal users to 
access remote data repositories and computational resources and allow outside 
25 users to access select internal resources for completing limited transactions or 
data transfer. 

Increasingly, network appliances, or simply"appliances," are being 
deployed within intranetworks to compliment and extend the types of services, 
offered. As a class, network appliances have closed architectures and often lack a 
30 standard user interface. These devices provide specialized services, such as 
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electronic mail (email) anti-virus scanning, content filtering, file, Web and print 

service, and packet routing functions. 

Ideally, network appliances should be minimal configuration devices, 

which are purchased, plugged into a network, and put into use with no further 
5 modification or change. Analogous to a cellular telephone, a network appliance 

should ideally provide the service promised without requiring involved 

configuration and setup by individual users or administrators. 

Nevertheless, configuring newly-installed appliances remains a 

complicated and confusing endeavor. Appliance configuration is generally 
10 vendor-specific and device-dependent. The lack of a user interface allows only 

indirect configuration and setup. Configuration often takes several steps. From a 

physical connectivity standpoint, appliance configuration typically requires 

operating a manual control panel, reconfiguring an installed appliance from a 

factory set of default settings or performing a myriad of other device-dependent 
15 operations to affect a configured setup. Consequently, a higher than average level 

of user sophistication is required to avoid a confusing, incorrect or potentially 

catastrophic outcome. 

In addition, operational software and firmware must also be properly 

configured as part of an initial setup. Often, a full software suite, including 
20 operating system, must be installed prior to initializing the appliance. In addition, 

the network protocol stack must be configured to operate within the specific 

installed network topology into which the device is deployed. 

Finally, various policies must be installed and operationally enforced on 

each appliance. Appliances offering plug-and-play installation generally lack the 
25 default settings necessary to enforce security and administrative policies. As 

well, until fully configured, these devices enjoy potentially free rein over a 

network domain and pose a serious. security risk to an entire enterprise. 

For instance, replay attacks are possible during device configuration. A 

configuration packet could be intercepted by a hostile agent and later re-sent 
30 ("replayed") with altered settings to reset the configuration and create a security 

breach. 
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In addition to per-device configuration and setup considerations, the 
deployment of appliances can create network management concerns. For 
instance, a large population of deployed appliances can drastically increase 
network management workload. Vendor-specific and device-dependent settings 
5 necessitate individualized attention to each successive appliance installation. A 
rich network environment having a multitude of heterogeneous systems and 
appliances can quickly overwhelm a network administrator and make the task of 
identifying unconfigured devices difficult and time consuming. 

In the prior art, the dynamic host configuration protocol (DHCP) provides 

10 a partial solution. DHCP allows a TCP/IP-compatible device to be dynamically 
assigned a network address within a pre-defined network domain. A DHCP 
server maintains a table of the network addresses assigned to each interconnected 
device, thereby preventing address conflicts. Network address assignments are 
"pushed" to each newly-connected device. However, DHCP servers are limited 

15 to configuring network addresses and fail to provide policy and device parameter 
configuration and setup. 

Therefore, there is a need for an approach to providing remote secure 
configuration of network appliances from a standardized user interface. 
Preferably, such an approach would offer a Web browser-based solution allowing 

20 configuration from a ubiquitous and widely available interfacing means. Such an 
approach would further provide a standardized interface for appliance 
configuration and setup in a vendor-neutral and device-independent fashion. 

There is a further need for an approach to providing automatic 
configuration of network appliances during initialization upon deployment into a 

25 network domain. Preferably, such an approach would provide a complete 

bootstrap solution with minimal user interaction. Furthermore, such an approach 
would preferably realize a cellular telephone service model of purchase, plug in 
and use. 

There is a further need for an approach to providing network-based 
30 configuration of network appliances that substantially minimizes the potential for 
creating security risks and, in particular, preventing replay attacks. 
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Summary of the Invention 

The present invention provides a system and method for remotely 
configuring a network appliance deployed within a network domain. A 
configuration client executes a Web browser upon which is loaded an applet for 
5 performing remote appliance configuration. The applet is initially retrieved from 
a centralized network operations center, which maintains a set of applets 
customized for each separate network domain and individual configurations for 
various network appliances. The configuration client, via the applet, broadcasts a 
"ping" query message to all appliances and receives back from each a response 

10 indicating a configuration state. An appliance configuration for each 

unconfigured network appliance is requested from the network operations center. 
The network operations center returns configuration parameters to the 
configuration client and a configuration packet is sent to each unconfigured 
appliance. Upon the successful configuration of each appliance, the configuration 

15 client instructs the appliance to begin a remote management session. Otherwise, 
the configuration packet is resent or the configuration client waits for the 
installation to complete. 

An embodiment of the present invention provides a system and a method 
for providing Web browser-based remote network appliance configuration in a 

20 distributed computing environment. A query message is broadcast from an applet 
executing within a Web browser to one or more network appliances. The network 
appliances are interconnected within a bounded network domain defined by a 
common network address space. A response message containing network 
settings, including a physical network address, is received by the applet from at 

25 least one such network appliance responsive to the query message and processed. 
A configuration packet is generated and sent using the physical network address 
for each at least one such network appliance sending a response message and 
requiring configuration. 

A further embodiment provides a system and method for remotely 

30 configuring a network appliance deployed within a distributed computing 

environment. A response message containing network settings is sent from at 
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least one network appliance responsive to a query message broadcast over a 
specified network domain within which the at least one network appliance 
operates. A configuration package for the at least one network appliance is 
generated. The configuration package contains centrally managed network 
5 settings customized for the at least one network appliance. The configuration 
package is installed on the at least one network appliance as part of an 
initialization bootstrap operation. 

Still other embodiments of the present invention will become readily 
apparent to those skilled in the art from the following detailed description, 

10 wherein is described embodiments of the invention by way of illustrating the best 
mode contemplated for carrying out the invention. As will be realized, the 
invention is capable of other and different embodiments and its several details are 
capable of modifications in various obvious respects, all without departing from 
the spirit and the scope of the present invention. Accordingly, the drawings and 

15 detailed description are to be regarded as illustrative in nature and not as 
restrictive. 

Brief Description of the Drawings 

FIGURE 1 is a block diagram showing a system for providing Web 
browser-based secure remote network appliance configuration in a distributed 
20 computing environment. 

FIGURE 2 is a block diagram showing the software modules of the 
network operations center of FIGURE 1. 

FIGURE 3 is a block diagram showing the software modules of the 
configuration client of FIGURE 1. 
25 FIGURE 4 is a block diagram showing the software modules of an 

exemplary network appliance of FIGURE 1. 

FIGURE 5 is a process flow diagram showing a remote network appliance 
configuration, as performed by the system of FIGURE 1. 

FIGURE 6 is a data structure diagram showing a configuration packet 
30 served by the configuration client of FIGURE 1. 
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FIGURE 7 is a flow diagram showing a method for providing Web 
browser-based secure remote network appliance configuration in a distributed 
computing environment, in accordance with the present invention. 

FIGURE 8 is a flow diagram showing the process performed by the 
5 network operations center of FIGURE 2. 

FIGURES 9A and 9B are flow diagrams showing the process performed 
by the configuration client of FIGURE 1. 

FIGURE 10 is a flow diagram showing the process performed by the 
network appliance of FIGURE 4. 
10 Detailed Description 

FIGURE 1 is a network diagram 10 showing a system for providing Web 
browser-based secure remote network appliance configuration in a distributed 
computing environment, in accordance with the present invention. The 
distributed computing environment is preferably TCP/IP compliant. A plurality 
15 of individual network appliances (or simply "appliances") lla-c are 
interconnected via an intranetwork 13. Each of the appliances lla-c is 
autonomously configured and provides specified functionality, such as electronic 
mail (email) anti-virus scanning, content filtering, packet routing, or file, Web, or 
print service. Other forms of appliance services are feasible, as would be 
20 recognized by one skilled in the art. 

In addition to providing the specified functionality, the various appliances 
lla-c are autonomously self-configured and self-managed, as further described 
below beginning with reference to FIGURE 4. The appliances lla-c are remotely 
configured through a configuration client 16 executing within a bounded network 
25 domain defined by a common network address space. The configuration client 16 
includes a Web browser 17 upon which an applet 23 executes to transparently 
install and configure each of the interconnected appliances lla-c. 

Upon the physical connection of each new appliance lla-c onto the 
intranetwork 13, an administrator executes a configuration application on the 
30 configuration client 16 via the Web browser 17. The Web browser 17 provides a 
user-friendly and standardized user interface for configuring appliances lla-c in a 
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device-independent and vendor-neutral manner. The configuration application 
executes the applet 2, which broadcasts a "ping" query message to all appliances 
lla-c on the intranetwork 13. In response, each appliance lla-c sends a response 
back to the configuration client 16, which then determines those appliances lla-c 
5 requiring configuration and setup. 

For each unconfigured appliance lla-c, the configuration client 16 
requests configuration parameters from a centralized network operations center 
(NOC) 12 in a secure session. 

The network operations center 12 determines the parameters necessary to 

10 properly configure the unconfigured appliance lla-c in accordance with 

applicable security and administration policies. The configuration parameters are 
sent to the requesting configuration client 16. Upon receiving the set of 
configuration parameters for each new appliance lla-c, the configuration client 
16 generates a configuration packet, which is customized for and sent to each 

15 unconfigured appliance lla-c. Upon the successful installation of each 

configuration packet by the appliances lla-c, the configuration client 16 sends a 
"kick-start" packet to initiate a secure remote management session on each 
appliance lla-c, such as described in commonly-assigned related U.S. patent 
application Serial No. , entitled "System And Method For 

20 Providing A Framework For Network Appliance Management In A Distributed 
Computing Environment," filed January 25, 2002, pending, the disclosure of 
which is incorporated by reference. 

The appliance configuration performed by the configuration client 16 is 
system independent and can be executed by any client interconnected within the 

25 same network domain as the appliances being configured. Accordingly, each new 
configuration client 16 initially requests an applet from an applet server 15 
executing on the network operations center 12 via a secure session. The applet 
server 15 is coupled to an applet database 14 to allow customization of the 
configuration functions performed within each individual network domain. Upon 

30 receipt of the applet, the configuration client 16 can proceed to configure the 
individual appliances lla-c. 
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Each appliance lla-c is interconnected via an intranetwork 13 which is, in 
turn, interconnected to an internetwork 20, including the Internet, via a firewall 21 
and border router 22. The configuration client 16 is also interconnected via the 
intranetwork 13 and shares the same network domain with the appliances lla-c. 
5 The network operations center 12 is external to the intranetwork 13 and is only 
accessible as a remote host via the internetwork 20. Accordingly, the 
configuration parameter and applet request functions are transacted with each 
appliance lla-c in a secure session, preferably using the Secure Hypertext 
Transport Protocol (HTTPS). Other network configurations, topologies and 
10 arrangements of clients and servers are possible, as would be recognized by one 
skilled in the art. 

The individual computer systems, including servers and clients, are 
general purpose, programmed digital computing devices consisting of a central 
processing unit (CPU), random access memory (RAM), non-volatile secondary 

15 storage, such as a hard drive or CD ROM drive, network interfaces, and 

peripheral devices, including user interfacing means, such as a keyboard and 
display. Program code, including software programs and data, are loaded into the 
RAM for execution and processing by the CPU and results are generated for 
display, output, transmittal, or storage. 

20 FIGURE 2 is a block diagram showing the software modules 30 of the 

network of FIGURE 1. The network operations center 12 includes three modules: 
status monitor 31, status daemon 32 and applet server 15. The applet server 15 
executes as part of the network operations center 12. The status monitor 31 
receives periodic status reports from the individual network appliances lla-c 

25 (shown in FIGURE 1). Each status report is recorded and registered in an 

appliance status table 33, which notes the appliance user identifier (UID) and time 
of each report. The status daemon 32 executes as an independent process that 
periodically awakens and examines the appliance status table 33 to determine 
whether any of the appliances lla-c have failed to report. As necessary, an alert 

30 is generated to inform an administrator of a potentially faulty appliance. 
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The applet server 15 includes three modules: applet engine 34, database 
35, and crypto 36. The applet engine 34 downloads individual applets 23 
maintained in the applet database 14 to requesting configuration clients 16 (shown 
in FIGURE 1) via a secure session. A library of applets 37 are maintained to 
5 allow customization of the various configuration applications executing within the 
Web browsers 17 each configuration client 16. 

The database module 35 interfaces to the applet database 14 to access the 
applets 37 maintained therein. In the described embodiment, the applet database 
14 is a structured query language (SQL) based database. The applets 37 are 
10 stored as structured records indexed by client identifiers. 

The crypto module 36 provides asymmetric (public key) and symmetric 
encryption. Both forms of cryptography are needed to transact a secure session 
with each appliance lla-c. As well, the network operations center 12 uses the 
crypto module 36 to digitally sign and encrypt the applets 37. 
15 The network operations center 12 includes a message queue 38 through 

which instructions to the applets 23 (shown in FIGURE 1) deployed on the 
individual configuration clients 16 are communicated. The configuration clients 
16 execute in an event-driven manner. Periodically, each configuration client 16 
checks the message queue 38 for new instructions which are transparently 
20 executed by the applet 23. 

In the described embodiment, five types of messages are communicated 
between the network operations center 12 and the configuration clients 16, as 
follows: 

sendRefreshQ: Sends a message to message queue 38 instructing the 
25 applet 23 to refresh the list of appliances lla-c that are on the network. 

SendKickQ: Sends a message to message queue 38 instructing the applet 
23 to send out a kick-start packet to the appliance lla-c with the given media 
access controller (MAC) address. 

Parameters: 
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MAC: The MAC address of the appliance lla-c to which the kick- 

start packet will be sent. Should be in 
"AA:BB:CC:00:11:22" format. 
sendConfigQ: Sends a message to message queue 38 instructing the applet 
5 23 to send a "CONFIG" configuration packet to the appliance lla-c with the 
given MAC address. 
Parameters : 

MAC: The MAC address of the appliance lla-c to which the 

configuration packet will be sent. Should be in 
10 "AA:BB:CC:00:11:22" format. 

Hostname: Value to be assigned as the hostname. 
Domain: Value to be assigned as the domain name. 
IP: Value to be assigned as the IP address. 

Netmask: Value to be assigned as the network mask. 
15 Gateway: Value to be assigned as the internet gateway. 

DNS1: Primary domain-name server. 

DNS2: Secondary domain-name server. 

String getListQ: Returns a list of select appliances lla-c with current 
network configuration in an internal appliance list in a configuration client 16. 
20 Parameters : 

Filter: Value that determines which appliances lla-c are returned. 

If the value is "0," all appliances are returned; and if the 
value is "2," only configured appliances are returned 

Return Value : 

25 The return value is a String that contains the select appliances, and current 

configuration information. The return value is a pipe-symbol ("|") 
delimited for every network parameter. An example return value is: 
00:B0:D0:ll:22:33:testl,mycio.com,127.0.0.1,255.255.255. 
128,0.0.0.0,0.0.0,0.0.0.0|00:ll:22:33:44:55:test2 3 
30 mycio.com,127.0.0.1,255.255.255.128,0.0.0.0.0,0.0.0.0 
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getStatusQ: Returns the status of the sendConfig message. Returns "0" if 
no SUCCESS or FAILED packet has yet been received from an appliance lla-c; 
"1" if a SUCCESS packet was received; and if a FAILED packet was 
received. 

5 FIGURE 3 is a block diagram showing the software modules 40 of a 

configuration client 16 of FIGURE 1. The configuration client 16 includes a 
Web browser 17 executing an applet 23. In the described embodiment, the Web 
browser 17 is a HTML-compatible Web browser, such as the Internet Explorer, 
licensed by Microsoft Corporation, Redmond, Washington, capable of executing 

10 downloadable programs, including applets, written in an interpretable 
programming language, such as the Java programming language. 

The applet includes three functional modules: status 41, configuration and 
packet generation 42, and completion 43. The status module 41 broadcasts a 
query message to the interconnected network appliances lla-c (shown in 

15 FIGURE 1) and processes response messages received back to determine the 
configuration of each appliance lla-c. The status of each appliance lla-c is 
maintained in a configured appliances list 44. The configuration and packet 
generation module 42 receive configuration parameters from the network 
operations center 12 (shown in FIGURE 1) and generates a configuration packet 

20 for downloading to an unconfigured appliance lla-c. The completion module 43 
receives a status message from each unconfigured appliance lla-c indicating 
whether the configuration packet was successfully installed. A configuration 
packet will be re-sent to any appliance lla-c that fails to successfully complete 
configuration. 

25 FIGURE 4 is a block diagram showing the software modules 50 of an 

exemplary network appliance 11a of FIGURE 1. Application-specific logic has 
been omitted for clarity. As pertains to autonomous configuration and 
management, each network appliance 11a includes four modules: bootstrap 
module 51, crypto 52, installer 53, and status daemon 54. The bootstrap module 

30 51 executes upon the initial installation of the appliance 11a onto the intranetwork 
13. The bootstrap module 51 sends a response message in reply to a broadcasted 
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"ping" query message from the configuration client 16. The response message 
includes the current configured network settings in use by the appliance 11a. For 
an unconfigured appliance 11a, the response packet includes only the media 
access controller (MAC) address used by the appliance 11a. As well, the 
5 bootstrap module 51 sends a response message to any subsequent query messages 
sent by the configuration client 16 and includes all currently in-use configured 
network settings, as maintained in the appliance configuration 55. 

Upon receiving a configuration packet from the configuration client 16, 
the bootstrap module 51 installs and sets up the various software applications to 

10 be executed by the appliance 11a. The software can include the operating system 
and any application-specific logic integral to providing the service performed by 
the appliance 11a. Through the use of the network operations center 12 and 
configuration client 16, the appliance 11a can be configured and managed 
remotely and in compliance with applicable security and administrative policies. 

15 Accordingly, the autonomous configuration and self-management of each 
network appliance lla-c can enable a vendor to provide a complete service 
model, whereby installations are handled autonomously and without significant 
end-user intervention. 

The crypto module 52 provides asymmetric (public key) and symmetric 

20 encryption. Both forms of cryptography are needed to transact a secure session 
with the network operations center 12 and a component server (not shown) used 
to manage and update the suite of applications 56 installed on the appliance 11a. 
The installer 53 installs applications received from a component server. Finally, 
the status daemon 54 periodically awakens and sends a report of the health and 

25 status of the network appliance 11a to the network operations center 12. The 

status report identifies the reporting appliance 11a and provides machine-specific 
data, including the load on the processor, available disk space and application- 
specific information, such as the number of emails passing through the device. 
The status report is referred to as a "SecureBeat." 

30 Each software module of the network operations center 12, configuration 

client 16 and exemplary appliance 11a is a computer program, procedure or 
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module written as source code in a conventional programming language, such as 
the C++ programming language, and is presented for execution by the CPU as 
object or byte code, as is known in the art. The various implementations of the 
source code and object and byte codes can be held on a computer-readable storage 
5 medium or embodied on a transmission medium in a carrier wave. The network 
operations center 12, configuration client 16 and exemplary appliance 11a operate 
in accordance with a sequence of process steps, as further described beginning 
below with reference to FIGURE 7. 

FIGURE 5 is a process flow diagram showing a remote network appliance 

10 configuration, as performed by the system of FIGURE 1. Each network appliance 
is autonomously configured by a configuration ("config") client 61. Upon the 
installation of a new appliance on the intranetwork 13 (shown in FIGURE 1), or 
as necessary to ascertain the current appliance configuration, the configuration 
client 61 broadcasts a "ping" query message (step 65) to all appliances 62 

15 currently interconnected within the bounded network domain. In response, each 
appliance 62 sends a response message (step 66) back to the configuration client 
61. Each response includes the current configured network settings in use by each 
appliance 62. A response containing only the media access controller (MAC) 
address of the appliance 62 indicates that the appliance is currently unconfigured. 

20 For each of the unconfigured appliances, the configuration client 61 sends 

a configuration packet request message (step 67) to the network operations center 
63 via a secure session. The network operations center 63 determines the correct 
configuration settings required by the appliance to be configured by referencing 
an appliance status table 33 (shown in FIGURE 2). The network operations 

25 center 63 generates a set of configuration parameters, which are sent (step 68) 
back to the requesting configuration client 61. The secure session is closed and 
the configuration client 61 forms a configuration packet for the unconfigured 
appliance 62. 

The configuration client 61 sends the configuration packet (step 69) to the 
30 unconfigured appliance 64 where the configuration packet is processed and 
installed. The appliance 64 sends a "SUCCESS" message (step 70) to the 
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configuration client 61 upon the successful configuration of the appliance. In 
response, the configuration client 61 returns a kick-start message (step 71) back to 
the appliance 64 to initiate an autonomous SecureBeat management session. 
Thereafter, the ongoing management of the appliance 64 is remotely facilitated by 
5 the network operations center 63. 

If the configuration is unsuccessful, the appliance 64 sends a "FAILURE" 
message (step 72) back to the configuration client 61, which resends the 
configuration packet (step 69) until successful. 

If the appliance 64 is still in the process of configuring, the appliance 64 
10 sends an unconfigured message (step 73) back to the configuration client 61, 
which then waits until the appliance 64 has been configured. Thereafter, a 
SecureBeat management session is initiated. 

FIGURE 6 is a data structure diagram showing a configuration packet 80 
served by the configuration client 16 of FIGURE 1. Each configuration packet 80 
15 contains the parameters described above with reference to FIGURE 2. 

While not necessary to completing an initial appliance configuration, the 
primary and secondary domain name server parameters 78 and 88, respectively, 
are optional and are provided for network administrative convenience. 

FIGURE 7 is a flow diagram 100 showing a method for providing Web 
20 browser-based secure remote network appliance configuration in a distributed 

computing environment, in accordance with the present invention. The individual 
components, including network operations center 12, configuration client 16 and 
individual network appliances lla-c, execute independently. Each of the 
components must be initialized and started (blocks 101-103) prior to appliance 
25 configuration. Upon respective initialization and starting, each component 

proceeds independently, as further described below with reference to FIGURES 
8-10. 

FIGURE 8 is a flow diagram 110 showing the process performed by the 
network operations center 12 of FIGURE 2. Network operations center 12 begins 
30 by connecting to a configuration client 16 (shown in FIGURE 1) requesting an 
applet 23 (shown in FIGURE 2) (block ill). An applet 23 is downloaded to the 
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configuration client 16 (block 112). Each configuration client 16 executes the 
applet 23 in a Web browser 17. 

Following applet download (blocks 111-112), the network operations 
center 12 executes an iterative processing loop (blocks 113-119). During each 
5 iteration (block 113), a secure session is established with a configuration client 16 
(block 114). Upon establishing a secure session, a configuration packet request is 
received (block 115). The network operations center 12 looks up the 
configuration 40 (shown in FIGURE 2) for the configured appliance 11a and 
generates configuration parameters (block 116). The configuration parameters are 

10 downloaded to the configuration client 16 (block 117), after which the secure 
session is closed (block 118). Processing continues (block 119) until the process 
is terminated or halted. 

FIGURES 9A and 9B are flow diagrams 120 showing the process 
performed by the configuration client 16 of FIGURE 1. The configuration client 

15 16 begins by broadcasting a "ping" query message to all network appliances lla-c 
(block 121) interconnected within the bounded network domain. The 
configuration client 16 then executes an iterative processing loop (blocks 122- 
133) for each appliance lla-c. 

During each iteration (block 122), a response from an appliance 11a is 

20 received (block 123) and processed as follows. If the response from the appliance 
11a indicates that the appliance is not presently configured (block 124), a 
configuration parameters request is sent to the network operations center 12 
(block 125). The network operations center 12 generates a set of configuration 
parameters which are then received (block 126) and formed into a configuration 

25 packet for the unconfigured appliance 11a (block 127). The configuration packet 
is sent to the appliance 11a (block 128). 

The configuration client 16 awaits a status response from the appliance 
11a (block 129). If the configuration succeeds (block 130), the configuration 
client 16 sends a kick-start packet to the appliance 11a (block 131), instructing the 

30 now-configured appliance 11a to initiate an autonomous SecureBeat management. 
Otherwise, if the configuration is not successful (block 130) and has failed (block 
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132), the configuration packet is sent again to the appliance 11a (block 128). 
Otherwise, the configuration client 16 waits for the completion of configuration 
by the appliance 11a (block 133), after which a kick-start packet is sent to the 
appliance 11a (block 131). Processing continues (block 134) until the process is 
5 terminated. 

FIGURE 10 is a flow diagram 140 showing the process performed by the 
network appliance 11a of FIGURE 4. Shortly following deployment into a 
network domain, or as necessary, a "ping" query message is received from a 
configuration client 16 (shown in FIGURE 1) (block 141). In response to the 

10 query message, the network appliance 11a generates and sends a response back to 
the requesting configuration client 16 (block 142). 

The response message includes the current network setting and 
configuration 55 (shown in FIGURE 4) used by the network appliance 11a. If the 
network appliance is not currently configured (block 143), a configuration packet 

15 is received from the configuration client 16 (block 144) and installed (block 145). 
If the installation is successful (block 145), a "success" response message is sent 
back to the configuration client 16 (block 146). The network appliance 11a then 
receives a kick-start packet from the configuration client 16 (block 147) 
instructing the network appliance 11 a to initiate a remote SecureBeat 

20 management session (block 148). If installation is not successful (block 145) and 
fails (block 149), a "failure" response is sent back to the configuration client 16 
(block 150), after which a further configuration packet is received from the 
configuration client 16 (block 144). Otherwise, if installation is still being 
performed (block 149), an "unconfigured" response is sent to the configuration 

25 client 16 (block 151) and the network appliance waits for configuration 

completion (block 152), after which a kick-start packet is received (block 147) 
and remote SecureBeat management session initiated (block 148). 

While the invention has been particularly shown and described as 
referenced to the embodiments thereof, those skilled in the art will understand that 

30 the foregoing and other changes in form and detail may be made therein without 
departing from the spirit and scope of the invention. 
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What is claimed is: 



1 1. A system for providing Web browser-based remote network 

2 appliance configuration in a distributed computing environment, comprising: 

3 one or more network appliances interconnected within a bounded network 

4 domain defined by a common network address space; and 

5 a configuration client comprising an applet executing within a Web 

6 browser and configuring the network appliances, comprising: 

7 a status module broadcasting a query message to the network 

8 appliances and processing a response message containing network settings, 

9 including a physical network address, received by the applet from at least one 

10 such network appliance responsive to the query message; and 

11 a configuration module generating and sending a configuration 

12 packet using the physical network address for each at least one such network 

13 appliance sending a response message and requiring configuration. 

1 2. A system according to Claim 1, further comprising: 

2 a list of the network appliances maintained by the status module for each 

3 at least one such network appliance sending a response message and not requiring 

4 configuration. 

1 3. A system according to Claim 1, further comprising: 

2 a completion module receiving a status message from each at least one 

3 such network appliance requiring configuration responsive to receipt of the 

4 configuration packet. 

1 4. A system according to Claim 3, wherein the status message 

2 indicates a successful configuration, further comprising sending a kickstart 

3 message to each at least one such network appliance to initiate an autonomous 

4 management session. 
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1 5. A system according to Claim 3, wherein the status message 

2 indicates an unsuccessful configuration, further comprising resending the 

3 configuration packet to the at least one such network appliance. 

1 6. A system according to Claim 3, wherein the status message 

2 indicates an on-going configuration, further comprising waiting for completion of 

3 configuration by the at least one such network appliance. 

1 7. A system according to Claim 1, further comprising: 

2 an applet database storing a plurality of applets customized for execution 

3 within each such bounded network domain; and 

4 an applet request module receiving the applet from the applet database and 

5 installing the applet into the Web browser prior to broadcasting the query 

6 message. 

1 8. A system according to Claim 7, wherein the applet is received in a 

2 secure session. 

1 9. A system according to Claim 1, further comprising: 

2 a message queue storing instructions for the applet, comprising sending at 

3 least one of the query message and the configuration packet. 

1 10. A system according to Claim 1, further comprising: 

2 a packet generator storing into the configuration packet values comprising 

3 at least one of hostname, domain, internet protocol address, netmask, gateway, 

4 primary domain name server, and secondary domain name server. 

1 11. A system according to Claim 1, wherein the bounded network 

2 domain is compliant with the TCP/IP and the configuration packet is compliant 

3 with the UDP. 

1 12. A method for providing Web browser-based remote network 

2 appliance configuration in a distributed computing environment, comprising: 
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3 broadcasting a query message from an applet executing within a Web 

4 browser to one or more network appliances interconnected within a bounded 

5 network domain defined by a common network address space; 

6 processing a response message containing network settings, including a 

7 physical network address, received by the applet from at least one such network 

8 appliance responsive to the query message; and 

9 generating and sending a configuration packet using the physical network 

10 address for each at least one such network appliance sending a response message 

1 1 and requiring configuration. 

1 13. A method according to Claim 12, further comprising: 

2 updating a list of the network appliances for each at least one such 

3 network appliance sending a response message and not requiring configuration. 

1 14. A method according to Claim 12, further comprising: 

2 receiving a status message from each at least one such network appliance 

3 requiring configuration responsive to receipt of the configuration packet. 

1 15. A method according to Claim 14, wherein the status message 

2 indicates a successful configuration, further comprising: 

3 sending a kickstart message to each at least one such network appliance to 

4 initiate an autonomous management session. 

1 16. A method according to Claim 14, wherein the status message 

2 indicates an unsuccessful configuration, further comprising: 

3 resehding the configuration packet to the at least one such network 

4 appliance. 

1 17. A method according to Claim 14, wherein the status message 

2 indicates an on-going configuration, further comprising: 

3 waiting for completion of configuration by the at least one such network 

4 appliance. 

1 18. A method according to Claim 12, further comprising: 
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2 receiving the applet from an applet database storing a plurality of applets 

3 customized for execution within each such bounded network domain; and 

4 installing the applet into the Web browser prior to broadcasting the query 

5 message. 

1 19. A method according to Claim 18, further comprising: 

2 receiving the applet in a secure session. 

1 20. A method according to Claim 12, further comprising: 

2 sending at least one of the query message and the configuration packet 

3 from the applet responsive to instructions maintained in a message queue. 

1 21. A method according to Claim 12, further comprising: 

2 storing into the configuration packet values comprising at least one of 

3 hostname, domain, internet protocol address, netmask, gateway, primary domain 

4 name server, and secondary domain name server. 

1 22. A method according to Claim 12, wherein the bounded network 

2 domain is compliant with the TCP/IP and the configuration packet is compliant 

3 with the UDP. 

1 23. A computer-readable storage medium holding code for performing 

2 the method according to Claims 12, 13, 14, 15, 16, 17, 18, 19, 20, 21, or 22. 

1 24. A system for remotely configuring a network appliance deployed 

2 within a distributed computing environment, comprising: 

3 at least one network appliance sending a response message containing 

4 network settings responsive to a query message broadcast over a specified 

5 network domain within which the at least one network appliance operates; 

6 a configuration client generating a configuration package for the at least 

7 one network appliance and containing centrally managed network settings 

8 customized for the at least one network appliance; and 

9 a bootstrap module on the at least one network appliance installing the 
10 configuration package as part of an initialization bootstrap operation. 
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1 25. A system according to Claim 24, further comprising: 

2 a centrally managed library of configurations containing network settings 

3 for each such network appliance operating with the specified network domain. 

1 26. A system according to Claim 24, further comprising: 

2 a library of applets for one or more Web browser-based configuration 

3 clients operating within the specified network domain. 

1 27. A system according to Claim 26, further comprising: 

2 an applet server deploying one such applet from the library to each such 

3 configuration client using a secure session. 

1 28. A system according to Claim 24, further comprising: 

. 2 a standardized user interface exported by the configuration client and 

3 providing configuration controls for a heterogeneous set of the network 

4 appliances. 

1 29. A system according to Claim 24, further comprising: 

2 a package generator including at least one of a timestamp and a unique 

3 seed value in each such configuration package. 

1 30. A system according to Claim 24, further comprising: 

2 a completion module sending a message comprising one of success, 

3 failure and unconfigured following configuration package installation at each 

4 such network appliance. 

1 31. A system according to Claim 24, further comprising: 

2 a status daemon initializing a secure management session following 

3 successful configuration package installation on at least one such network 

4 appliance. 

1 32. A system according to Claim 24, wherein at least one such network 

2 appliance performs one of electronic mail anti-virus scanning, content filtering, 

3 packet routing, and file, Web and print servicing. 
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1 33. A system according to Claim 24, wherein the distributed 

2 computing environment is TCP/IP-compliant. 

1 34. A method for remotely configuring a network appliance deployed 

2 within a distributed computing environment, comprising: 

3 sending a response message containing network settings from at least one 

4 network appliance responsive to a query message broadcast over a specified 

5 network domain within which the at least one network appliance operates; 

6 generating a configuration package for the at least one network appliance 

7 and containing centrally managed network settings customized for the at least one 

8 network appliance; and 

9 installing the configuration package on the at least one network appliance 
10 as part of an initialization bootstrap operation. 

1 35. A method according to Claim 34, further comprising: 

2 centrally managing a library of configurations containing network settings 

3 for each such network appliance operating with the specified network domain. 

1 36. A method according to Claim 34, further comprising: 

2 maintaining a library of applets for one or more Web browser-based 

3 configuration clients operating within the specified network domain. 

1 37. A method according to Claim 36, further comprising: 

2 deploying one such applet from the library to each such configuration 

3 client using a secure session. 

1 38. A method according to Claim 34, further comprising: 

2 exporting a standardized user interface providing configuration controls 

3 for a heterogeneous set of the network appliances. 

1 39. A method according to Claim 34, further comprising: 

2 including at least one of a timestamp and a unique seed value in each such 

3 configuration package. 
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1 40. A method according to Claim 34, further comprising: 

2 sending a message comprising one of success, failure and unconfigured 

3 following configuration package installation at each such network appliance. 

1 41. A method according to Claim 34, further comprising: 

2 initializing a secure management session following successful 

3 configuration package installation on at least one such network appliance. 

1 42. A method according to Claim 34, wherein at least one such 

2 network appliance performs one of electronic mail anti-virus scanning, content 

3 filtering, packet routing, and file, Web and print servicing. 

1 43. A method according to Claim 34, wherein the distributed 

2 computing environment is TCP/IP-compliant. 

1 44. A computer-readable storage medium holding code for performing 

2 the method according to Claims 34, 35, 36, 37, 38, 39, 40, 41, 42, or 43. 
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SYSTEM AND METHOD FOR PROVIDING WEB BROWSER-BASED 
SECURE REMOTE NETWORK APPLIANCE CONFIGURATION IN A 
DISTRIBUTED COMPUTING ENVIRONMENT 



Abstract 

5 A system and method for providing Web browser-based remote network 

appliance configuration in a distributed computing environment is described. A 
query message is broadcast from an applet executing within a Web browser to one 
or more network appliances. The network appliances are interconnected within a 
bounded network domain defined by a common network address space. A 
10 response message containing network settings, including a physical network 
address, is received by the applet from at least one such network appliance 
responsive to the query message and processed. A configuration packet is 
generated and sent using the physical network address for each at least one such 
network appliance sending a response message and requiring configuration. 
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